CVE-2008-2511 - OpenCVE

Directory traversal vulnerability in the UmxEventCli.CachedAuditDataList.1 (aka UmxEventCliLib) ActiveX control in UmxEventCli.dll in CA Internet Security Suite 2008 allows remote attackers to create and overwrite arbitrary files via a .. (dot dot) in the argument to the SaveToFile method. NOTE: this can be leveraged for code execution by writing to a Startup folder. NOTE: some of these details are obtained from third party information.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:M/Au:N/C:C/I:C/A:C

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Ca	Internet Security Suite Plus 2008

Configuration 1 [-]

cpe:2.3:a:ca:internet_security_suite_plus_2008:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://retrogod.altervista.org/9sg_CA_poc.html
http://secunia.com/advisories/30420
http://www.securityfocus.com/archive/1/492679/100/0/threaded
http://www.securitytracker.com/id?1020129
http://www.vupen.com/english/advisories/2008/1696/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/42712
https://www.exploit-db.com/exploits/5682

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2008-06-02T14:00:00

Updated: 2024-08-07T09:05:29.570Z

Reserved: 2008-06-02T00:00:00

Link: CVE-2008-2511

Vulnrichment

No data.

NVD

Status : Modified

Published: 2008-06-02T21:30:00.000

Modified: 2018-10-11T20:41:46.583

Link: CVE-2008-2511

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2008-05-28T00:00:00", "descriptions": [{"lang": "en", "value": "Directory traversal vulnerability in the UmxEventCli.CachedAuditDataList.1 (aka UmxEventCliLib) ActiveX control in UmxEventCli.dll in CA Internet Security Suite 2008 allows remote attackers to create and overwrite arbitrary files via a .. (dot dot) in the argument to the SaveToFile method. NOTE: this can be leveraged for code execution by writing to a Startup folder. NOTE: some of these details are obtained from third party information."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-11T19:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "5682", "tags": ["exploit", "x_refsource_EXPLOIT-DB"], "url": "https://www.exploit-db.com/exploits/5682"}, {"name": "ADV-2008-1696", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2008/1696/references"}, {"name": "30420", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/30420"}, {"tags": ["x_refsource_MISC"], "url": "http://retrogod.altervista.org/9sg_CA_poc.html"}, {"name": "internet-security-umxeventcli-file-overwrite(42712)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/42712"}, {"name": "1020129", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id?1020129"}, {"name": "20080528 [NSG_28-5-08] CA Internet Security Suite 2008 (UmxEventCli.dll/SaveToFile()) remote file corruption poc", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/492679/100/0/threaded"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2008-2511", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Directory traversal vulnerability in the UmxEventCli.CachedAuditDataList.1 (aka UmxEventCliLib) ActiveX control in UmxEventCli.dll in CA Internet Security Suite 2008 allows remote attackers to create and overwrite arbitrary files via a .. (dot dot) in the argument to the SaveToFile method. NOTE: this can be leveraged for code execution by writing to a Startup folder. NOTE: some of these details are obtained from third party information."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "5682", "refsource": "EXPLOIT-DB", "url": "https://www.exploit-db.com/exploits/5682"}, {"name": "ADV-2008-1696", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2008/1696/references"}, {"name": "30420", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/30420"}, {"name": "http://retrogod.altervista.org/9sg_CA_poc.html", "refsource": "MISC", "url": "http://retrogod.altervista.org/9sg_CA_poc.html"}, {"name": "internet-security-umxeventcli-file-overwrite(42712)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/42712"}, {"name": "1020129", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id?1020129"}, {"name": "20080528 [NSG_28-5-08] CA Internet Security Suite 2008 (UmxEventCli.dll/SaveToFile()) remote file corruption poc", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/492679/100/0/threaded"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T09:05:29.570Z"}, "title": "CVE Program Container", "references": [{"name": "5682", "tags": ["exploit", "x_refsource_EXPLOIT-DB", "x_transferred"], "url": "https://www.exploit-db.com/exploits/5682"}, {"name": "ADV-2008-1696", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2008/1696/references"}, {"name": "30420", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/30420"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://retrogod.altervista.org/9sg_CA_poc.html"}, {"name": "internet-security-umxeventcli-file-overwrite(42712)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/42712"}, {"name": "1020129", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id?1020129"}, {"name": "20080528 [NSG_28-5-08] CA Internet Security Suite 2008 (UmxEventCli.dll/SaveToFile()) remote file corruption poc", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/492679/100/0/threaded"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2008-2511", "datePublished": "2008-06-02T14:00:00", "dateReserved": "2008-06-02T00:00:00", "dateUpdated": "2024-08-07T09:05:29.570Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ca:internet_security_suite_plus_2008:*:*:*:*:*:*:*:*", "matchCriteriaId": "33F7E184-EA23-487C-83ED-65CF8DD2DB18", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Directory traversal vulnerability in the UmxEventCli.CachedAuditDataList.1 (aka UmxEventCliLib) ActiveX control in UmxEventCli.dll in CA Internet Security Suite 2008 allows remote attackers to create and overwrite arbitrary files via a .. (dot dot) in the argument to the SaveToFile method. NOTE: this can be leveraged for code execution by writing to a Startup folder. NOTE: some of these details are obtained from third party information."}, {"lang": "es", "value": "Una vulnerabilidad de salto de directorio en el control ActiveX UmxEventCli.CachedAuditDataList.1 (tambi\u00e9n se conoce como UmxEventCliLib) en biblioteca UmxEventCli.dll en CA Internet Security Suite 2008, permite a los atacantes remotos crear y sobrescribir archivos arbitrarios por medio de un .. (punto punto) en el argumento al m\u00e9todo SaveToFile . NOTA: esto puede ser aprovechado para la ejecuci\u00f3n del c\u00f3digo mediante la escritura en una carpeta Startup. NOTA: algunos de estos detalles fueron obtenidos de informaci\u00f3n de terceros."}], "id": "CVE-2008-2511", "lastModified": "2018-10-11T20:41:46.583", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 9.3, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2008-06-02T21:30:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://retrogod.altervista.org/9sg_CA_poc.html"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/30420"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/492679/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securitytracker.com/id?1020129"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2008/1696/references"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/42712"}, {"source": "cve@mitre.org", "url": "https://www.exploit-db.com/exploits/5682"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-22"}], "source": "nvd@nist.gov", "type": "Primary"}]}